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Abstract —Secret sharing is a new alternative for outsourcing 
data in a secnre way.It avoids the need for time consuming 
encryption decryption process and also the complexity involved in 
key management.The data must also be protected from untrusted 
cloud service providers.Secret sharing based solution provides 
secure information dispersal by making shares of the original 
data and distribute them among different servers.Data from the 
threshold number of servers can be nsed to reconstrnct the 
original data.It is often impractical to distribute data among 
large number of servers.We have to achieve a trade off between 
security and efflciency.An optimal choice is to use a ( 2 , 3 ) or ( 2 , 4 ) 
threshold secret sharing scheme, where the data are distributed 
as shares among three or four servers and shares from any two 
can be used to construct the original data.Thls provides both 
security,reliability and efficiency.We propose some efficient and 
easy to implement secret sharing schemes in this regard based 
on nnmber theory and bitwise XOR.These schemes are also 
suitable for secure sharing of images.Secret image sharing based 
on Shamir’s schemes are lossy and involves complicated Lagrange 
Interpolation.So the proposed scheme can also be effectively 
utilized for lossless sharing of secret images. 

Keywords:Shamir’s Secret Sharing,Secure Data Stor¬ 
age,Secret Image Sharing 

I. Introduction 

The secret sharing schemes are originally proposed by 
Shamir IT] and Blackley ID in 1979. The motivation was to 
safeguard cryptographic keys.Their solution was to store the 
secret keys at several locations as shares and when authorized 
number of users collaborate together, they can retrieve the 
secret.The schemes are (f, n) threshold schemes where any 
t number of users can collaborate to recover the secret out 
of n users.This provides both security,reliability and conve¬ 
nience.Shamir’s scheme is simple and easy to implement and 
is based on polynomial interpolation.Blackley’s scheme has a 
different approach and is based on hyperplane geometry.But 
it is difficult to implement. Secret sharing schemes have found 
numerous applications in designing several cryptographic pro¬ 
tocols . Threshold cryptography 0, access control 131, secure 
multi-party computation Q © 0, attribute based encryption 
la El, generalized oblivious transfer cni im, visual cryptog¬ 
raphy ifm etc., are some of the important areas where secret 
sharing schemes are used.In this paper we suggest efficient 
secret sharing schemes for the reliable and secure distributed 
storage of data on untrusted servers. 


Shamir’s scheme is based on polynomial interpolation over 
a finite field. It uses the fact that we can construct a polynomial 
of degree t — \ only if t data points are given.The scheme 
is based on polynomial interpolation.Given t points in the 
2-dimensional plane {xi,yi),..., {xt,yt), with distinct x^’s, 
there is one and only one polynomial P{x) of degree t — 1 
such that P{xi) = yt for all Tin order to share the secret 
S , pick a random t — 1 degree polynomial P{x) = uq -f 
aix -f ... -f at_ix*“^ with oq = 5',and evaluate shares as 
= P(1),,S^ = P{2),...S[ = P{i)...S'^ = P(n).Any 
subset of t of these shares S[ together with their identifying 
indices, we can find the coefficients of P{x) by interpolation, 
and then evaluate S = P(0).The knowledge of just f — 1 of 
these values, does not suffice in order to calculate S'.Efficient 
0{nlog^n) algorithms exist for the evaluation and interpola¬ 
tion of polynomials. 

A secret sharing scheme is called perfect if less than t shares 
give no information about the secret.lt is known that for a 
perfect secret sharing scheme H{Si) > H{S). If H{Si) = 
H (S) then the secret sharing scheme is called ideal. Shamir’s 
scheme is perfect and ideal.Blackley’s scheme is not perfect. 

Confidentiality,reliability and efficiency are the major con¬ 
cerns in secure storage of data.The idea of secret sharing 
for the information dispersal is suggested by Krawczyk et 
al ifTTIl in 1994.He proposed a computationally secure secret 
sharing scheme for the distributed storage using Rabin’s IH 
information dispersal algorithm and Shamir’s secret sharing 
scheme.However the data is encrypted using a symmetric key 
encryption and the share of the key is distributed along with 
the data shares.The share size is less than the secret in this 
case compromising the information theoretic security. Abhishek 
Parak et al na in 2010 proposed a space efficient secret 
sharing scheme for the implicit data security.They incorporated 
k — 1 secrets in n shares and any k shares can be used to 
reconstruct the original secret. A recursive construction using 
Shamir’s scheme is applied in which computational over head 
is more.Recursive methods of secret sharing is also mentioned 
in m , El .Computational secret sharing schemes are pro¬ 
posed for the space efficiency in lIT^ . lT^ . llTOI . 

Secret sharing based solution provides information theoret¬ 
ical security on confidentiality with out encryption and hence 
avoid the complexities associated with encryption and key 


management.lt also provides the guarantee on availability of 
data. Perfect secret sharing needs large amount of computa¬ 
tional overhead.We propose specially designed secret sharing 
schemes using XOR and number theoretic technique to reduce 
the computation overhead.Unanimous consent schemes are 
easy to implement using XOR.But the implementation of a 
general {t, n) threshold scheme is difficult.Wang et al lISTl 
proposed a scheme based on boolean operation which is used 
for secret image sharing in 2007.Kurihara et al Il23l . ll22ll pro¬ 
posed a 93, n) and a generalized (f,n) secret sharing scheme 
based on simple XOR operations.Efficient and ideal threshold 
scheme based on XOR is proposed by Lv et al ll24ll in 2010. Se¬ 
cret sharing using number theoretic schemes are also developed 
based on Chinese reminder theorem l^ . ll^ . lIZTll .Thev are 
not widely used because of the computational complexity.The 
proposed scheme make use of simple number theoretic concept 
and the Euclid’s algorithm. 

II. Proposed Secret Sharing Schemes 

The proposed system suggests a method of storing and 
retrieving private data in a secure and effective manner. The 
private data include personal information, sensitive information 
or unique identification etc. The data storage may be a private 
information storage using cloud database.We propose number 
theoretic and XOR based scheme for efficient implementation 
of secret sharing scheme.lt can be used for secure storage 
and retrieval.Since it does not involve any encryption, the 
PKI needed for key management can be avoided.Section 2.1 
contains the detailed description of the secret sharing algorithm 
using number theoretic concept.Section 2.2 explains the XOR 
based schemes.The algorithms mentioned below are designed 
to share one byte of data at a time.The scheme can be used to 
share both textual data and images. 

A. Schemes Based on Number Theory 

In this section the proposed secret sharing schemes which 
are based on number theoretic concepts and are explained in 
detail.Two threshold secret sharing schemes of order (2, 3) and 
(2,4) are proposed.The Algorithm[T]is the (2, 3) secret sharing 
phase and the retrieval algorithms depend on which shares are 
used for the reconstruction and are given in Algorithms 111 
I3I4I A (2,4) secret sharing scheme is mentioned in Algorithm 
|5]The secret revealing algorithms corresponds to different 
combination of shares are given in Algorithms l6l7l8ll0ll lI The 
algorithms use simple number theory concept. In order to find 
the inverse of a number extended Euclid’s algorithm can be 
used.The share generation can be done with a complexity of 
0{n) and the secret revealing can be done with a complexity 
of 0{nlogn), where n is the number of bytes to share. Table 
lookup can be used for faster performance. 

B. Schemes based on XOR 

An (n, n) scheme using XOR can easily be setup by 
creating n—l random shares of same size as the secret and the 
nth share as the XOR of these n—l shares and the secret /c.The 
secret can be revealed by simply XOR ing all the shares.In 


Algorithm 1; (2,3) Secret Sharing: Number Theory 
Data: Input hie S to share. 

Result: Three Shares S1,S2,S3 of same size as the 
original hie. 

Choose a held Zp where p = 257. 
while not at end of the input file do 

s=read_byte(S) // read a byte or pixel 

if s == 0 then 

s = 256 

end 

P— 1 

a = //hnd cube root of s 
r=random(257) // random number between 0-256 
si = r X a mod p // si is the sharel pixel 
if si == 256 then 
si = 0 

end 

s2 = X a mod p // s2 is the share2 pixel 
if s2 == 256 then 
s2 = 0 

end 

s3 = r"* X a mod p // s3 is the share3 pixel 
if s3 == 256 then 
s3 = 0 

end 

end 


Algorithm 2: (2,3) Secret Revealing:Number Theory S1S2 

Data: Shares SI and S2 

Result: The original secret hie S which is shared 

Choose a held Zp where p = 257. 
while not at end of the input files do 

sl=read_byte(Sl) // read a byte or pixel from SI 
s2=read_byte(S2) // read a byte or pixel from S2 

if si == 0 then 

si = 256 

end 

if s2 == 0 then 

s2 = 256 

end 

a = sl^ X s2“^ modp 

s = mod p; // s is the secret data byte or pixel if 
s == 256 then 
s = 0 

end 

end 


this we propose two scheme.An ideal (2,3) scheme where the 
size of the share is same as that of the secret is mentioned in 
Algorithm [16] and a non ideal scheme which is also not perfect 
is mentioned in Algorithm [T2| In this the size of the share 
is reduced to half.The scheme can be used when the storage 
become a constraint. The secret sharing and revealing can be 
done in time 0(n), where n is the number of bytes to share.The 
secret reconstruction corresponds to different combination of 











Algorithm 3: (2,3) Secret Revealing:Number Theory S1S3 

Data: Shares SI and S3 

Result: The original secret file S which is shared 

Choose a field Zp where p = 257. 
while not at end of the input files do 

sl=read_byte(Sl) // read a byte or pixel from SI 
s3=read_byte(S3) // read a byte or pixel from S2 

if si == 0 then 

si = 256 

end 

if s3 == 0 then 

s3 = 256 

end 

s = sl^ X s3“^ mod p // s is the secret data byte or 
pixel 

if s == 256 then 

s = 0 

end 


Algorithm 4; (2,3) Secret Revealing:Number I'heory S2S3 

Data: Shares S2 and S3 

Result: The original secret file S which is shared 

Choose a field Zp where p = 257. 
while not at end of the input files do 

s2=read_byte(S2) // read a byte or pixel from S1 
s3=read_byte(S3) // read a byte or pixel from S2 

if s2 == 0 then 

s2 = 256 

end 

if s3 == 0 then 

s3 = 256 

end 

a = s2^ X s3“^ modp 

s = mod p\ // s is the secret data byte or pixel 

if s == 256 then 

s = 0 

end 


Algorithm 5: (2,4) Secret Sharing:Number I'heory 
Data: Input file S to share. 

Result: Four Shares S1,S2,S3,S4 of same size as the 
original file. 

Choose a field Zp where p = 257. 
while not at end of the input file do 

s=read_byte(S) // read a byte or pixel 

if s == 0 then 

s = 256 

end 

r=random(257) // random number between 0-256 
si = r // si is the share 1 pixel 
if si == 256 then 
si = 0 

end 

s2 = r X s mod p // s2 is the share2 pixel 
if s2 == 256 then 
s2 = 0 

end 

s3 = X s mod p // s3 is the share3 pixel 
if s3 == 256 then 
s3 = 0 

end 

s4 = X s mod p //s4 is the share4 pixel 
if s4 == 256 then 
s4 = 0 

end 


Algorithm 6: (2,4) Secret Revealing:Number I'heory S1S2 

Data: Shares SI and S2 

Result: The original secret file S which is shared 

Choose a field Zp where p = 257. 
while not at end of the input files do 

sl=read_byte(Sl) // read a byte or pixel from SI 
s2=read_byte(S2) // read a byte or pixel from S2 

if si == 0 then 

si = 256 

end 

if s2 == 0 then 

s2 = 256 

end 

s = si X s2“^ mod p 

if s == 256 then 
s = 0 

end 


shares in the non ideal scheme are mentioned in Algorithms 
I13ll4ll5l and in the ideal schemes are mentioned in Algorithms 
I17I18I19I 























Algorithm 7: (2,4) Secret Revealing:Number Theory SI S3 
Data: Shares SI and S3 

Result: The original secret file S which is shared 

Choose a field where p = 257. 
while not at end of the input files do 

sl=read_byte(Sl) // read a byte or pixel from SI 
s3=read_byte(S3) // read a byte or pixel from S3 

if si == 0 then 

si = 256 

end 

if s3 == 0 then 

s3 = 256 

end 

s = (sl^)“^ X s3 mod p 

if s == 256 then 

s = 0 

end 


Algorithm 9: (2,3) Secret Revealing:Number Theory S2S3 
Data: Shares S2 and S3 

Result: The original secret file S which is shared 

Choose a field Zp where p = 257. 
while not at end of the input files do 

s2=read_byte(S2) // read a byte or pixel from S2 
s3=read_byte(S3) // read a byte or pixel from S4 

if s2 == 0 then 

s2 = 256 

end 

if s3 == 0 then 

s3 = 256 

end 

s = s2^ X s3“^ modp) 

if s == 256 then 

s = 0 

end 


Algorithm 8: (2,4) Secret Revealing:Number Theory S1S4 
Data: Shares SI and S4 

Result: The original secret file S which is shared 

Choose a field Zp where p = 257. 
while not at end of the input files do 

sl=read_byte(Sl) // read a byte or pixel from SI 
s4=read_byte(S4) // read a byte or pixel from S4 

if si == 0 then 

si = 256 

end 

if s4 == 0 then 

s4 = 256 

end 

s = (sl^)“^ X s4 mod p 

if s == 256 then 

s = 0 

end 


Algorithm 10: (2,4) Secret Revealing:Number 

mM _ 

Data: Shares S2 and S4 

Result: The original secret file S which is shared 

Choose a field Zp where p = 257. 
while not at end of the input files do 

s2=read_byte(S2) // read a byte or pixel from S2 
s4=read_byte(S4) // read a byte or pixel from S4 

if s2 == 0 then 

s2 = 256 

end 

if s4 == 0 then 

s4 = 256 

end 

s = sqrt{s2^ x s4“^ modp) 

if s == 256 then 

s = 0 

end 


end 


end 















Data; Shares S3 and S4 

Result; The original secret file S which is shared 

Choose a field where p = 257. 
while not at end of the input files do 

s3=read_byte(S3) // read a byte or pixel from S2 
s4=read_byte(S4) // read a byte or pixel from S4 

if s3 == 0 then 

s3 = 256 

end 

if s4 == 0 then 

s4 = 256 

end 

s = s3^ X (s4^)“^ modp 

if s == 256 then 

s = 0 

end 


orithm 14: (Z,i) AUK secret revealm 


Data; Share SI and S3 

Result; The original secret file S which is shared. 

while not at end of the input files do 

sl=read_byte(Sl) // read a byte or pixel from SI 
s3=read_byte(S3) // read a byte or pixel from S3 
s2 = si © s3 

// intermix the bits of si and s2 to construct the 
secret byte 

s = intermix(sl, s2) // intermix the bits of si and s2 
to construct the secret byte 

end 




orithm 


Data; Secret file S to share. 

Result; Three shares S1,S2 and S3 of half the size of S. 

while not at end of the input files do 

s=read_byte(S) // read a byte or pixel from S 
6s=binary(s) // bs is the binary representation of s 
// odd bits of bs taken as share 1 data nibble si 
sl=odd_bits(6s) 

// even bits of bs taken as share2 data nibble s2 
s2=even_bits(6s) 

//share3 nibble is formed by xoring si and s2 
s3 = si © s2 

end 




secret revealm 


orithm 


Data; Share Si and S2 

Result; The original secret file S which is shared. 

while not at end of the input files do 

sl=read_byte(Sl) // read a byte or pixel from SI 
s2=read_byte(S2) // read a byte or pixel from S2 
s = intermix(sl, s2) // intermix the bits of sl and s2 
to construct the secret byte 
end 


secret revealm 


orithm 


Data; Share S2 and S3 

Result; The original secret file S which is shared. 

while not at end of the input files do 

s2=read_byte(S2) // read a byte or pixel from S2 
s3=read_byte(S3) // read a byte or pixel from S3 
sl = s2 © s3 

s = intermix(sl, s2) // intermix the bits of sl and s2 
to construct the secret byte 

end 





















orithm 


Data; Input file S to share. 

Result: Three Shares SH1,SH2,SH3 of same size as the 
original file. 

while not at end of the input file do 
s=read_byte(S) // read a byte or pixel 
r=random(257) // random number between 0-256 
si, s2=split_two(s)// split s into 2 nibbles 
rl, r2=split_two(r) // split r into 2 nibbles 
sO = 0000 // a dummy variable initialized to zero 
shl = sO © rl||s2 © r2 // shl is the sharel pixel and 
’ll’ is concatenation operation sh2 = si ® rl||s0 © r2 
//sh2 is the share2 pixel and ’||’ is concatenation 
operation s/i3 = s2 ® rl||sl © r2 //sh3 is the share3 
pixel and ’||’ is concatenation operation 
end 


Algorithm 17: (2,3)XOK Ideal Secret Recovery 
Data; Shares SHI and SH2 
Result; Original secret S that is shared 

while not at end of the input files do 

s/il=read_byte(SHl) // read a byte or pixel 
sft-2=read_byte(SH2) 
x\, 7/l=split_two(s/il) 
a:2,7/2=split_two(s/i2) 
si = xl ® x2 
s2 = yl © y2 
s = sl| |s2 
end 




onthm 


Data; Shares SH2 and SH3 
Result: Original secret S that is shared 

while not at end of the input files do 

s/i2=read_byte(SH2) // read a byte or pixel 
sft-3=read_byte(SH3) 
x2, 7/2=split_two(sft.2) 
a;3,7/3=split_two(s/i3) 
si = t/2 © y3 
s2 = x2 © x3 © si 
s = sl||s2 
end 


III. Conclusion 

The confidentiality,availability and performance require¬ 
ment of storage system is addressed in this paper.Secret sharing 
based solutions provides information theoretic security and 
also provides trust and reliability.We developed simple XOR 
based schemes which is easy to implement and increase the 
performance.The storage requirement can also be reduced if 
we use scheme where the share size is only half the size of 
the original secret.The schemes mentioned in this paper are 
simple and easy to implement when sharing data with third 
party servers.The cost factor must also be considered.A (3, 2) 
or (4, 2) schemes are the best choices.The cost factor can also 
be reduced by using the non ideal XOR based scheme where 
the share size is reduced to half but the information theoretic 
security is compromised.A secret vector which indicates the 
share number that each server stores can be kept secret.A 
simple substitution or transposition cipher can also be used 
as a preprocessing step before sharing the file for additional 



security .The use of these schemes can be further explored in 
other areas where the threshold required is as specified in the 
algorithm. We have used this schemes for efficient sharing of 
secret images also. 
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